Risky.biz, who was alerted to the leak by Australian security consultant Daniel Grzelak, estimates the e-mail and password pairs for 300,000 users may have been comprised. Fortunately, due to legal regulations, credit card, debit card, and netbanking banking data could not be stored in Sosata's database so that information for those users are all safe.

Groupon quickly released a statement alerting its Indian customers to the breach and assured deal-buyers around the globe that "this issue does not affect data from any country or region."

While that might be true, it doesn't exactly instill confidence in Groupon -- though to be fair, Grzelak told Risky.Biz that this is actually a common occurrence. "There are thousands of these databases indexed by Google. This just happened to be by far the biggest I found."